201 · Question #144
A BIG-IP Administrator is unable to connect to the management interface via HTTPS. What is a possible reason for this issue?
The correct answer is D. The IP address of the device used to access the management interface is NOT included in the "httpd. An administrator might be unable to connect to the BIG-IP management interface via HTTPS if the accessing device's IP address is not permitted in the HTTPD Allow list within the platform's security settings. This list explicitly controls which source IP addresses are allowed to e
Question
A BIG-IP Administrator is unable to connect to the management interface via HTTPS. What is a possible reason for this issue?
Options
- AThe port lockdown setting is configured to Allow None.
- BAn incorrect management route is specified.
- CThe IP address of the device used to access the management interface is NOT included in the "P
- DThe IP address of the device used to access the management interface is NOT included in the "httpd
How the community answered
(40 responses)- A8% (3)
- B3% (1)
- C5% (2)
- D85% (34)
Why each option
An administrator might be unable to connect to the BIG-IP management interface via HTTPS if the accessing device's IP address is not permitted in the HTTPD Allow list within the platform's security settings. This list explicitly controls which source IP addresses are allowed to establish an HTTPS connection to the BIG-IP management port.
Port lockdown settings apply to Self-IPs and control which services are allowed on those data-plane interfaces, not the dedicated management interface.
While an incorrect management route could prevent connectivity, the question implies a specific configuration issue related to allowing HTTPS access, making the "httpd allow" list a more direct and specific reason.
"P" is an incomplete choice and does not represent a known BIG-IP configuration setting for management interface access.
The BIG-IP system uses an "httpd allow" list, similar to an access control list, to specify which source IP addresses are permitted to connect to the management interface via HTTPS. If the IP address of the device attempting to connect is not present in this "httpd allow" list, the connection will be blocked, preventing HTTPS access.
Concept tested: BIG-IP management interface HTTPS access control
Source: https://techdocs.f5.com/en-us/bigip-15-0-0/big-ip-system-management/managing-access-to-the-management-interface.html
Topics
Community Discussion
No community discussion yet for this question.